dozabt4329 2014-04-05 12:16
浏览 17
已采纳

我如何在数据库中插入段落[关闭]

I am New in PHP , I am trying to insert paragraph in database by php

my code

<html>
<body>
<?php
include("config.php");

$sql= mysql_qurey("INSERT into paragraph (event_head_1, event_1) VALUES
('$_POST[event]', '$_POST[description]' ");
if (!mysqli_query($sql))
        {
            die('Error: ' . mysqli_error($con));
        }
        else echo "1 record added";
?>






<table align="left">
<tr>
<td colspan="3"><strong>Paragraph </strong></td><br>
<td>
</td>
</tr>
<td>Event</td>
<td>:</td>
<td><input name="event" name="event" type="text" id="event"></td><br>
</tr>
<tr>
<td>Description</td>
<td>:</td>
<td><textarea name="description" value="description" name="description"></textarea></td>
<td>
</td>
<tr>

<td><input type="submit" name="Submit" value="Submit"></td>
</tr>
</table>
</td>
</form>

</body>
</html>

i get error after this program

error

Fatal error: Call to undefined function mysql_qurey() in C:\xampp\htdocs\SRK\admin\admin.php on line 6

please give me some suggestion

  • 写回答

4条回答 默认 最新

  • duanhui1869 2014-04-05 13:41
    关注

    Edit

    You're also missing an opening <form> tag and executing mysqli_query twice and having name="description" and name="event" twice.

    Assuming you are using mysqli_* based functions for your DB connection, since you are using it in if (!mysqli_query($sql)).

    You're (kind of) mixing your SQL API's mysqli_* and mysql_*

    From what I could tell by your wanting to use mysql_qurey

    Which is a spelling mistake which should read as mysql_query if anything.

    Use mysqli_query.

    However, doing it this way is leaving you open to SQL injection.

    <html>
<body>
<?php
include("config.php");

if(isset($_POST['Submit'])){

$sql= "INSERT into paragraph (event_head_1, event_1) VALUES
('$_POST[event]', '$_POST[description]'");
if (!mysqli_query($con,$sql))
        {
            die('Error: ' . mysqli_error($con));
        }
        else { echo "1 record added"; }

}
?>

<form action="" method="post">
<table align="left">
<tr>
<td colspan="3"><strong>Paragraph </strong></td><br>
<td>
</td>
</tr>
<td>Event</td>
<td>:</td>
<td><input name="event" type="text" id="event"></td><br>
</tr>
<tr>
<td>Description</td>
<td>:</td>
<td><textarea value="description" name="description"></textarea></td>
<td>
</td>
<tr>

<td><input type="submit" name="Submit" value="Submit"></td>
</tr>
</table>
</td>
</form>

</body>
</html>

    Sidenote: Your present code is open to SQL injection. Use prepared statements, or PDO

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(3条)

报告相同问题?

悬赏问题

  • ¥15 R语言Rstudio突然无法启动
  • ¥15 关于#matlab#的问题:提取2个图像的变量作为另外一个图像像元的移动量,计算新的位置创建新的图像并提取第二个图像的变量到新的图像
  • ¥15 改算法,照着压缩包里边,参考其他代码封装的格式 写到main函数里
  • ¥15 用windows做服务的同志有吗
  • ¥60 求一个简单的网页(标签-安全|关键词-上传)
  • ¥35 lstm时间序列共享单车预测,loss值优化,参数优化算法
  • ¥15 Python中的request,如何使用ssr节点,通过代理requests网页。本人在泰国,需要用大陆ip才能玩网页游戏,合法合规。
  • ¥100 为什么这个恒流源电路不能恒流?
  • ¥15 有偿求跨组件数据流路径图
  • ¥15 写一个方法checkPerson,入参实体类Person,出参布尔值